Stolen Identities API Offers Compromised Identities Being Traded

Overview

Compiled since 2008, Acuris Stolen Identities provides the largest proprietary database of compromised personal information being traded on known criminal websites on the unindexed web. It includes:

Identity data – Name, National Insurance/Social Security number, address, passport, and drivers license numbers.
Personal data – Email address and domains, secret questions, and answers, employer, payment provider IDs (PayPal, eBay), user names, and passwords.
Financial data – Account numbers, sort codes, routing numbers, card information including PIN.

Using the API you can search against specific records or monitor information on a continuous basis.

Request more information

View documentation

Details

Coverage

Global

Archive size

>45 Billion records

Archive history

N/A

Information source

Dark Web

Content type

Compromised Identities

Delivery protocol

REST/HTTPS

Authentication type

API Key Header

Response format

JSON

Update frequency

Constant

Point in time

N/A

Frequently asked questions

My details appear multiple times and the source and date are the same for each entry?

This has occurred when criminals have merged previously hacked email/password lists into one larger one commonly referred to as a “Combolist” or “Collection”. These can consist of 100s/1000s of different hacked email/password lists and can contain in excess of a billion entries. Your details will have been in different hacked email/password lists which once merged produce multiple results within the one larger dataset.

My Telephone/Mobile number or Email is linked to another person’s details? 

We have reproduced the data as it was posted.

If you have been the victim of an attempted identity fraud or an actual identity fraud, these may be the details that were used by the fraudster

Your details may have changed as a result of “Disruption” tactics by Anti-Fraud Organisations (see Incorrect Bank details)

Your details may have been added to other data by criminals in order to enhance its perceived value.

Important – Your mobile/landline/email may have acquired its own “Digital Identity” associated with the incorrect details. Whilst nothing can be done with such data on the Dark Web it may well have leaked onto the World Wide Web.

Search your email address and phone numbers in the Google browser ensuring they are contained with speech marks. i.e “[email protected]”/ “7234567890” etc. This should indicate if they have found their way onto the Worldwide web and are now open source.

Only a partial portion of my password is shown in the database, do I still need to change it? 

Yes, when trading stolen email credentials criminals will often encrypt, obscure or remove characters to disguise the real details, which will be revealed once they purchased.

What are  "VoucherValue/VoucherValue1"?  

These are our random fields and contain data that should be recognizable to you as the subject of the record. For example, these fields may contain information concerning Loyalty schemes, Mobile Phone contracts or Utility accounts, basically any data that was found together with your other details that we believe may help you identify the source from where your data originated.

I have been informed an Organisation/Website where I have registered has been hacked, will my information be available in your database?

Not all data that has been obtained following data breach will ever find its way onto the dark web, if that is the  case, we will not have your data in our database. However just because a database where your data is stored  has been breached does not necessarily mean your data has been compromised.

Complying with  legal regulations in many countries, or just company  policy,  means  that the hosting organisation may report the “Worst case” scenario meaning the very maximum amount of data that could have been exposed is reported , not what actually may have been compromised. Responsible companies will inform you if your data was part of the compromised data.

Whether or not your data was exposed, take the opportunity to spring clean all your passwords and check your credit report regularly.

means  that the hosting organisation may report the “Worst case” scenario meaning the very maximum amount of data that could have been exposed is reported

not what actually may have been compromised. Responsible companies will inform you if your data was part of the compromised data.

Whether or not your data was exposed

take the opportunity to spring clean all your passwords and check your credit report regularly.

Details

FAQ

Related APIs & data feeds

Cookie	Type	Duration	Description
__cfduid	1	29 days 23 hours 59 minutes	The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
cookielawinfo-checkbox-analytics	1	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Analytics" category .
cookielawinfo-checkbox-functional	1	1 year	The cookie is set by the GDPR Cookie Consent plugin to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	0	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-non-necessary	0	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non Necessary".
cookielawinfo-checkbox-other	1	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category "Other".
JSESSIONID	1	13 days 23 hours 59 minutes	Used by sites written in JSP. General purpose platform session cookies that are used to maintain users'' state across page requests.
viewed_cookie_policy	0	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
vuid	1	1 years 11 months 28 days 23 hours 59 minutes	This domain of this cookie is owned by Vimeo. This cookie is used by vimeo to collect tracking information. It sets a unique ID to embed videos to the website.
XSRF-TOKEN	1	1 days 23 hours 59 minutes	The cookie is set by Wix website building platform on Wix website. The cookie is used for security purposes.

Cookie	Type	Duration	Description
_ga	1	1 years 11 months 28 days 23 hours 59 minutes	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site''s analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_ga_64Q73PPC3E	1	2 years	This cookie is installed by Google Analytics.
_gat_gtag_UA_45487328_32	0		This is a pattern type cookie set by Google Analytics, where the pattern element on the name contains the unique identity number of the account or website it relates to. It appears to be a variation of the _gat cookie which is used to limit the amount of data recorded by Google on high traffic volume websites.
_gat_UA-85023278-1	0		This is a pattern type cookie set by Google Analytics, where the pattern element on the name contains the unique identity number of the account or website it relates to. It appears to be a variation of the _gat cookie which is used to limit the amount of data recorded by Google on high traffic volume websites.
_gid	1	23 hours 59 minutes	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the wbsite is doing. The data collected including the number visitors, the source where they have come from, and the pages viisted in an anonymous form.
_omappvp	1	10 years 11 months 10 days 23 hours 59 minutes	The cookie is set to identify new vs returning users. The cookie is used in conjunction with _omappvs cookie to determine whether a user is new or returning.
_omappvs	1	9 minutes	The cookie is used to in conjunction with the _omappvp cookies. If the cookies are set, the user is a returning user. If neither of the cookies are set, the user is a new user.
bscookie	1	1 years 11 months 29 days 11 hours 37 minutes	This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
ELQSTATUS	1	1 years 1 months	This cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from, and the pages they visited. Once consent is provided, through a form submission by the visitor, we can associate a visitor's ID to individual characteristics and past behavior.
li_sugr	1	2 months 28 days 23 hours 59 minutes	This cookie is used to make a probabilistic match of a user's identity outside the Designated Countries.
lissc	1	11 months 29 days 23 hours 59 minutes	This cookie is provided by LinkedIn. This cookie is used for tracking embedded service.
sbjs_current	1	5 months 27 days	This cookie is to identify the source of a visit and store user action information about it in a cookies. This is a analytic and behavioural cookie used for improving the visitor experience on the website.
sbjs_current_add	1	5 months 27 days	This cookie is to identify the source of a visit and store user action information about it in a cookies. This is a analytic and behavioural cookie used for improving the visitor experience on the website.
sbjs_first	1	5 months 27 days	This cookie is to identify the source of a visit and store user action information about it in a cookies. This is a analytic and behavioural cookie used for improving the visitor experience on the website.
sbjs_first_add	1	5 months 27 days	This cookie is to identify the source of a visit and store user action information about it in a cookies. This is a analytic and behavioural cookie used for improving the visitor experience on the website.
sbjs_migrations	1	5 months 27 days	This cookie is to identify the source of a visit and store user action information about it in a cookies. This is a analytic and behavioural cookie used for improving the visitor experience on the website.
sbjs_session	1	30 minutes	This cookie is to identify the source of a visit and store user action information about it in a cookies. This is a analytic and behavioural cookie used for improving the visitor experience on the website.
sbjs_udata	1	5 months 27 days	This cookie is to identify the source of a visit and store user action information about it in a cookies. This is a analytic and behavioural cookie used for improving the visitor experience on the website.
UserMatchHistory	1	29 days 23 hours 59 minutes	Linkedin - Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.

Cookie	Type	Duration	Description
__ncuid	1	1 year	No description available.
_clck	0	1 year	No description
_clsk	0	1 day	No description
_gat_ncAudienceInsightsGa	0	1 minute	No description
AnalyticsSyncHistory	0	1 month	No description
CLID	1	1 year	No description
country	1	1 month	No description available.
i18next	1	11 months 29 days 23 hours 59 minutes	No description
KV_CLIENT_SESSION_ID	1	11 months 29 days 23 hours 59 minutes	No description
li_gc	0	5 months 27 days	No description
pap_session	1	1 days 23 hours 59 minutes	No description
pap_wcaid_288	1	5 days 23 hours 59 minutes	No description
SM	1	session	No description available.
TS01bd9a65	1		No description

Cookie	Type	Duration	Description
__cf_bm	1	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
bcookie	1	1 years 11 months 29 days 11 hours 37 minutes	This cookie is set by linkedIn. The purpose of the cookie is to enable LinkedIn functionalities on the page.
ELOQUA	1	1 years 1 months	The domain of this cookie is owned byOracle Eloqua. This cookie is used for email services. It also helps for marketing automation solution for B2B marketers to track customers through all phases of buying cycle.
lang	1	session	This cookie is used to store the language preferences of a user to serve up content in that stored language the next time user visit the website.
lidc	1	23 hours 59 minutes	This cookie is set by LinkedIn and used for routing.
optimizelyEndUserId	1	5 months 27 days	Optimizely uses this cookie to store a visitor''s unique identifier which is a combination of a timestamp and a random number. Different variations of web parts are shown to users that optimizes the website''s user experience.

Stolen Identities API details

Overview

Details

Frequently asked questions

Related APIs & data feeds